I’ll assume you don’t have Elasticsearch and such up and running already? EveBox was initially built to “just work” in that scenario, but it can also work without Elasticsearch. I’m going to assume you are running EveBox on the same machine as Suricata, so you could do something like:
mkdir ~/.config/evebox
evebox server --datastore sqlite -D ~/.config/evebox --host 0.0.0.0 /var/log/suricata/eve.json
This will use SQLite and consume the Suricata events from /var/log/suricata/eve.json. You can view the events and alerts with a browser, http://your-server-ip-here:5636.
Authentication, TLS can all be added, but for that, please see the EveBox docs.